CVE-2005-0035 — Adobe Acrobat Reader vulnerability

2 documents2 sources

Severity

5.1MEDIUMNVD

EPSS

3.8%

top 11.89%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Adobe Acrobat Reader

Timeline

PublishedMay 2

Latest updateMay 1

Description

The Acrobat web control in Adobe Acrobat and Acrobat Reader 7.0 and earlier, when used with Internet Explorer, allows remote attackers to determine the existence of arbitrary files via the LoadFile ActiveX method.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages1 packages

▶NVDadobe/acrobat_reader9 versions+8

🔴Vulnerability Details

GHSA

GHSA-39v2-v4hx-4r39: The Acrobat web control in Adobe Acrobat and Acrobat Reader 7↗2022-05-01

▶